From 9c5619151dfa899ba7f4a912aa92036099d712c1 Mon Sep 17 00:00:00 2001 From: glitsj16 Date: Tue, 16 Apr 2019 02:09:53 +0000 Subject: Follow upstream changes in authenticator.profile (#2654) * Add authenticator cache to disable-programs.inc * Update authenticator.profile Follow upstream changes in authenticator.profile --- etc/authenticator.profile | 10 +++++----- etc/disable-programs.inc | 1 + 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/etc/authenticator.profile b/etc/authenticator.profile index f989ab1ba..5f1c64682 100644 --- a/etc/authenticator.profile +++ b/etc/authenticator.profile @@ -6,6 +6,7 @@ include authenticator.local # Persistent global definitions include globals.local +noblacklist ${HOME}/.cache/Authenticator noblacklist ${HOME}/.config/Authenticator # Allow python (blacklisted by disable-interpreters.inc) @@ -25,7 +26,7 @@ include disable-programs.inc # apparmor caps.drop all -net none +netfilter no3d # nodbus - makes settings immutable nodvd @@ -36,15 +37,14 @@ nosound notv nou2f # novideo -protocol unix +protocol unix,inet,inet6 seccomp shell none disable-mnt -# private-bin authenticator -private-cache +# private-bin authenticator,python* private-dev -private-etc alternatives,fonts,ld.so.cache +private-etc alternatives,ca-certificates,fonts,ld.so.cache,ssl private-tmp # memory-deny-write-execute - breaks on Arch diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc index 96fd80daf..41c6eb53e 100644 --- a/etc/disable-programs.inc +++ b/etc/disable-programs.inc @@ -625,6 +625,7 @@ blacklist /tmp/ssh-* # ${HOME}/.cache directory blacklist ${HOME}/.cache/0ad blacklist ${HOME}/.cache/8pecxstudios +blacklist ${HOME}/.cache/Authenticator blacklist ${HOME}/.cache/Clementine blacklist ${HOME}/.cache/Enox blacklist ${HOME}/.cache/Franz -- cgit v1.2.3-70-g09d2